Extended ChangeLog entry

This commit is contained in:
Janos Follath 2016-02-11 11:15:44 +00:00 committed by Simon Butcher
parent 25da9b35cf
commit 6200b50518

View File

@ -6,7 +6,8 @@ Security
* Fix missing padding length check in mbedtls_rsa_rsaes_pkcs1_v15_decrypt * Fix missing padding length check in mbedtls_rsa_rsaes_pkcs1_v15_decrypt
required by PKCS1 v2.2 required by PKCS1 v2.2
* Fix a potential integer underflow to buffer overread in * Fix a potential integer underflow to buffer overread in
mbedtls_rsa_rsaes_oaep_decrypt mbedtls_rsa_rsaes_oaep_decrypt. It is not triggerable remotely in
SSL/TLS.
* Fix potential integer overflow to buffer overflow in * Fix potential integer overflow to buffer overflow in
mbedtls_rsa_rsaes_pkcs1_v15_encrypt and mbedtls_rsa_rsaes_oaep_encrypt mbedtls_rsa_rsaes_pkcs1_v15_encrypt and mbedtls_rsa_rsaes_oaep_encrypt